CVE-2026-22794

CRITICAL

Appsmith < 1.93 - Origin Validation Error

Title source: rule

Description

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.93, the server uses the Origin value from the request headers as the email link baseUrl without validation. If an attacker controls the Origin, password reset / email verification links in emails can be generated pointing to the attacker’s domain, causing authentication tokens to be exposed and potentially leading to account takeover. This vulnerability is fixed in 1.93.

Exploits (2)

nomisec WORKING POC 7 stars

by MalikHamza7 · poc

https://github.com/MalikHamza7/CVE-2026-22794-POC

View Code ZIP pw:eip

github SUSPICIOUS 2 stars

by exploitChains · pythonpoc

https://github.com/exploitChains/poc-collection/tree/main/CVE-2026-22794

View Code ZIP pw:eip

References (2)

[Patch] https://github.com/appsmithorg/appsmith/commit/6f9ee6226bac13fb4b836940b557913fff78b633

[Exploit, Vendor Advisory] https://github.com/appsmithorg/appsmith/security/advisories/GHSA-7hf5-mc28-xmcv

Scores

CVSS v3 9.6

EPSS 0.0002

EPSS Percentile 4.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Details

CWE

CWE-346

Status published

Products (1)

appsmith/appsmith < 1.93

Published Jan 12, 2026

Tracked Since Feb 18, 2026